Class KerberosAuthenticationToken

java.lang.Object
org.elasticsearch.xpack.security.authc.kerberos.KerberosAuthenticationToken
All Implemented Interfaces:
AuthenticationToken

public final class KerberosAuthenticationToken extends Object implements AuthenticationToken
This class represents an AuthenticationToken for Kerberos authentication using SPNEGO. The token stores base 64 decoded token bytes, extracted from the Authorization header with auth scheme 'Negotiate'.

Example Authorization header "Authorization: Negotiate YIIChgYGKwYBBQUCoII..."

If there is any error handling during extraction of 'Negotiate' header then it throws ElasticsearchSecurityException with RestStatus.UNAUTHORIZED and header 'WWW-Authenticate: Negotiate'